ICSA Labs Blog

Print
Terms of Use

Malware – It keeps going, and going and going…

Would it not be enough for you to worry about picking up a malware infection via an e-mail, infected program or social media Web site.  Now consumers have to worry about every intelligent device they plug into your computer. This is not new news. We have already seen reports of infected digital picture frames, GPS devices, etc. The latest non-techie device to spread malware is a battery recharging unit.  Yup, that’s right – battery recharging unit. The Duo Charger, USB-powered battery recharger contains malicious code.

Why a Test Lab Needs to be Wary of Commercial Exploit Packet Captures

When it comes to testing coverage protection for their network intrusion prevention system (IPS), enterprise end users may use a commercial tool that contains and replays many exploit packet captures.[1]    

White Paper Issued: "Third-Party Assurance as a Component of the Enterprise Product Selection Process"

I hinted in the reply to a comment on one of my earlier postings (Looking to make certified products a proposal requirement?

ICSA Labs Making News Again

Well, looks like Andy and I are making news again! I have an opinion piece on a familiar topic just published in Government Security News and Andy is featured in SC Magazine.

Take a look and let us know what you think.

Happy Valentines Day -- here’s your malware.

Pick a holiday, any holiday, and get ready for targeted, malicious email.  

Looking to make certified products a proposal requirement? Look here for sample language.

Today (January 6) we issued a press release (available here www.icsalabs.com/press-release/icsa-labs-offers-tips) with tips on how business and government agencies can use independent product assurance from a third party to simplify the Request for Proposal (RFP) process. 

ICSA Labs Issues Report that Exposes Common Flaws Among Security Products

Welcome to the launch of the ICSA Labs Blog.  We are excited about the opportunity to use our new blog as a forum for greater interaction with the security community at large, especially those with a vested interest in computing security.